General
-
Target
app.exe
-
Size
4.5MB
-
Sample
211014-qbakfaacfq
-
MD5
fc71c451366dd6e7f0aeeb306752fa52
-
SHA1
8748f5854b6dde9205903a9774ff0b0f62b452bd
-
SHA256
e164923d190995c709d3d08f8d96825a7dbfdff4bf6b583dd4cc21b312f0d760
-
SHA512
9fc08f712663a7b6ed52bf8ee36ef8f7f5aaa12b064ec92bf050a22214cd023422e806c7bba4e0233384fe3343a30a07d8f8fa8db496065bc755adde2f5c8c11
Static task
static1
Behavioral task
behavioral1
Sample
app.exe
Resource
win7-ja-20210920
Malware Config
Extracted
metasploit
windows/single_exec
Targets
-
-
Target
app.exe
-
Size
4.5MB
-
MD5
fc71c451366dd6e7f0aeeb306752fa52
-
SHA1
8748f5854b6dde9205903a9774ff0b0f62b452bd
-
SHA256
e164923d190995c709d3d08f8d96825a7dbfdff4bf6b583dd4cc21b312f0d760
-
SHA512
9fc08f712663a7b6ed52bf8ee36ef8f7f5aaa12b064ec92bf050a22214cd023422e806c7bba4e0233384fe3343a30a07d8f8fa8db496065bc755adde2f5c8c11
-
Glupteba Payload
-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-
Drops file in System32 directory
-